VYPR

ShopNx

by ShopNx

CVEs (1)

  • CVE-2018-12519HigJun 19, 2018
    risk 0.61cvss 8.8epss 0.08

    An issue was discovered in ShopNx through 2017-11-17. The vulnerability allows a remote attacker to upload any malicious file to a Node.js application. An attacker can upload a malicious HTML file that contains a JavaScript payload to steal a user's credentials.